LetMeR00t/TA-thehive-cortex external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

LetMeR00t/TA-thehive-cortex

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/LetMeR00t/TA-thehive-cortex)

Close

LetMeR00t / TA-thehive-cortexView on GitHubMore

• External links
• Readme badge

Technical add-on for Splunk related to TheHive/Cortex from TheHive project

☆54Mar 21, 2026Updated 3 weeks ago

Alternatives and similar repositories for TA-thehive-cortex

Users that are interested in TA-thehive-cortex are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• TheHive-Project / awesome

  View on GitHub
  A curated list of awesome things related to TheHive & Cortex
  ☆185Oct 9, 2021Updated 4 years ago
• cdefid / TheHiveIRPlaybook

  View on GitHub
  TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response
  ☆13Jul 13, 2020Updated 5 years ago
• guilhemmarchand / TA-jira-service-desk-simple-addon

  View on GitHub
  Atlasian JIRA add-on for Splunk alert actions
  ☆15Dec 2, 2025Updated 4 months ago
• NextronSystems / TA-aurora

  View on GitHub
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Sep 27, 2022Updated 3 years ago
• voxpupuli / puppet-misp

  View on GitHub
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆14Updated this week
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• magicsword-io / Magic-SigExplorer

  View on GitHub
  ☆15Sep 24, 2024Updated last year
• Shuffle / shuffle-docs

  View on GitHub
  Documentation used for Shuffle
  ☆21Apr 1, 2026Updated 2 weeks ago
• zolderio / misp-to-sentinel

  View on GitHub
  Azure function to insert MISP data in to Azure Sentinel
  ☆34Oct 19, 2022Updated 3 years ago
• eCrimeLabs / phish2MISP

  View on GitHub
  Easy way to create a MISP event related to a Phishing page
  ☆17May 31, 2023Updated 2 years ago
• Truvis / Splunk_TA_Truvis_Suricata5

  View on GitHub
  This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…
  ☆15Sep 5, 2020Updated 5 years ago
• TheHive-Project / Cortex-Analyzers

  View on GitHub
  Cortex Analyzers Repository
  ☆477Updated this week
• murchisd / splunk_pstree_app

  View on GitHub
  Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)
  ☆24Mar 30, 2026Updated 2 weeks ago
• cudeso / misp-tip-of-the-week

  View on GitHub
  A collection of tips for using MISP.
  ☆76Dec 11, 2024Updated last year
• wagga40 / Zircolite

  View on GitHub
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆801Apr 6, 2026Updated last week
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• vletoux / ADSecrets

  View on GitHub
  Set of ultra technical notes about AD
  ☆18Jun 17, 2018Updated 7 years ago
• Cyb3rWard0g / infosec-well-done

  View on GitHub
  A few quick recipes for those that do not have much time during the day
  ☆22Oct 28, 2024Updated last year
• jheise / yarascanner

  View on GitHub
  Golang based web service to scan files with yara rules
  ☆25Jul 6, 2017Updated 8 years ago
• P4T12ICK / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆115May 18, 2020Updated 5 years ago
• jpalanco / klara-docker-compose

  View on GitHub
  Klara docker compose
  ☆11May 19, 2020Updated 5 years ago
• TheHive-Project / docs

  View on GitHub
  Official documentation for TheHive Project applications
  ☆21Sep 29, 2023Updated 2 years ago
• blookot / rsa2elk

  View on GitHub
  Converts Netwitness log parser configuration to Logstash configuration
  ☆20Sep 10, 2020Updated 5 years ago
• zeflow / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆12Jul 1, 2021Updated 4 years ago
• atc-project / atc-react

  View on GitHub
  A knowledge base of actionable Incident Response techniques
  ☆665May 31, 2022Updated 3 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• TheHive-Project / Synapse

  View on GitHub
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Jul 28, 2023Updated 2 years ago
• j91321 / ansible-role-auditbeat

  View on GitHub
  Ansible role to install auditbeat for security monitoring. (Ruleset included)
  ☆15Nov 16, 2023Updated 2 years ago
• threathunters-io / laurel

  View on GitHub
  Transform Linux Audit logs for SIEM usage
  ☆824Mar 5, 2026Updated last month
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing

  View on GitHub
  DNS Dashboard for hunting and identifying beaconing
  ☆16Jul 29, 2020Updated 5 years ago
• LDO-CERT / orochi

  View on GitHub
  The Volatility Collaborative GUI
  ☆268Feb 11, 2026Updated 2 months ago
• CAPESandbox / community

  View on GitHub
  Community modules for CAPE Sandbox
  ☆111Mar 25, 2026Updated 3 weeks ago
• austinsonger / Incident-Playbook

  View on GitHub
  GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
  ☆1,551Jul 28, 2024Updated last year
• jipegit / IncidentsMindMaps

  View on GitHub
  Cybersecurity Incidents Mind Maps
  ☆34Sep 29, 2021Updated 4 years ago
• kaansk / shomon

  View on GitHub
  Shodan Monitoring integration for TheHive.
  ☆130Dec 12, 2024Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• siriussecurity / dettectinator

  View on GitHub
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆118Jan 22, 2026Updated 2 months ago
• splunk / TA-misp_es

  View on GitHub
  MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
  ☆14Jul 11, 2023Updated 2 years ago
• MISP / best-practices-in-threat-intelligence

  View on GitHub
  Best practices in threat intelligence
  ☆50Nov 6, 2022Updated 3 years ago
• splunk / attack_range_local

  View on GitHub
  Build a attack range in your local machine
  ☆131May 8, 2023Updated 2 years ago
• olegzhr / altprobe

  View on GitHub
  collector/runner
  ☆64Sep 6, 2025Updated 7 months ago
• ned1313 / Azure-Information-Protection

  View on GitHub
  ☆18Feb 21, 2020Updated 6 years ago
• sebdraven / IOCmite

  View on GitHub
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆37Nov 9, 2022Updated 3 years ago